threatintel

CVE Alert: CVE-2024-52333

January 14, 2025

Vulnerability Summary: CVE-2024-52333 An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially...

CVE Alert: CVE-2025-22800

January 14, 2025

Vulnerability Summary: CVE-2025-22800 Missing Authorization vulnerability in Post SMTP Post SMTP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...

CVE Alert: CVE-2025-22963

January 14, 2025

Vulnerability Summary: CVE-2025-22963 Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin. Affected Endpoints: POST /api/user/admin Published Date:...

CVE Alert: CVE-2024-48883

January 14, 2025

Vulnerability Summary: CVE-2024-48883 An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990,...

CVE Alert: CVE-2024-47796

January 14, 2025

Vulnerability Summary: CVE-2024-47796 An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially...

CVE Alert: CVE-2024-57487

January 14, 2025

Vulnerability Summary: CVE-2024-57487 In Code-Projects Online Car Rental System 1.0, the file upload feature does not validate file extensions or...

CVE Alert: CVE-2024-6352

January 14, 2025

Vulnerability Summary: CVE-2024-6352 A malformed packet can cause a buffer overflow in the APS layer of the Ember ZNet stack...

CVE Alert: CVE-2024-57488

January 14, 2025

Vulnerability Summary: CVE-2024-57488 Code-Projects Online Car Rental System 1.0 is vulnerable to Cross Site Scripting (XSS) via the vehicalorcview parameter...

CVE Alert: CVE-2024-12211

January 14, 2025

Vulnerability Summary: CVE-2024-12211 Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an Stored XSS issue with profile. Affected...

CVE Alert: CVE-2024-46919

January 14, 2025

Vulnerability Summary: CVE-2024-46919 An issue was discovered in Samsung Mobile Processor Exynos 9820, 9825, 980, 990, 850, 1080, 2100, and...

[FUNKSEC] – Ransomware Victim: bluai[.]ai

January 14, 2025

Ransomware Group: FUNKSEC VICTIM NAME: bluaiai NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[QILIN] – Ransomware Victim: Clnica CES

January 14, 2025

Ransomware Group: QILIN VICTIM NAME: Clnica CES NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[QILIN] – Ransomware Victim: Thilges & Bernhardt, Attorneys at Law

January 14, 2025

Ransomware Group: QILIN VICTIM NAME: Thilges & Bernhardt, Attorneys at Law NOTE: No files or stolen information are by RedPacket...

[SPACEBEARS] – Ransomware Victim: Sharm Reef Hotel

January 14, 2025

Ransomware Group: SPACEBEARS VICTIM NAME: Sharm Reef Hotel NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2024-46479

January 14, 2025

Vulnerability Summary: CVE-2024-46479 Venki Supravizio BPM through 18.0.1 was discovered to contain an arbitrary file upload vulnerability. An authenticated attacker...

CVE Alert: CVE-2024-46920

January 14, 2025

Vulnerability Summary: CVE-2024-46920 An issue was discovered in Samsung Mobile Processor Exynos 9820, 9825, 980, 990, 850, 1080, 2100, and...

CVE Alert: CVE-2024-46481

January 14, 2025

Vulnerability Summary: CVE-2024-46481 The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to...

CVE Alert: CVE-2024-54999

January 14, 2025

Vulnerability Summary: CVE-2024-54999 MonicaHQ v4.1.2 was discovered to contain a Client-Side Injection vulnerability via the last_name parameter the General Information...

CVE Alert: CVE-2024-5743

January 14, 2025

Vulnerability Summary: CVE-2024-5743 An attacker could exploit the 'Use of Password Hash With Insufficient Computational Effort' vulnerability in EveHome Eve...

CVE Alert: CVE-2025-23026

January 14, 2025

Vulnerability Summary: CVE-2025-23026 jte (Java Template Engine) is a secure and lightweight template engine for Java and Kotlin. In affected...

CVE Alert: CVE-2024-51491

January 14, 2025

Vulnerability Summary: CVE-2024-51491 notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project...

CVE Alert: CVE-2024-46480

January 14, 2025

Vulnerability Summary: CVE-2024-46480 An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with Application Administrator...

CVE Alert: CVE-2025-22134

January 14, 2025

Vulnerability Summary: CVE-2025-22134 When switching to other buffers using the :all command and visual mode still being active, this may...

CVE Alert: CVE-2024-56138

January 14, 2025

Vulnerability Summary: CVE-2024-56138 notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project...

threatintel

CVE Alert: CVE-2024-52333

CVE Alert: CVE-2025-22800

CVE Alert: CVE-2025-22963

CVE Alert: CVE-2024-48883

CVE Alert: CVE-2024-47796

CVE Alert: CVE-2024-57487

CVE Alert: CVE-2024-6352

CVE Alert: CVE-2024-57488

CVE Alert: CVE-2024-12211

CVE Alert: CVE-2024-46919

[FUNKSEC] – Ransomware Victim: bluai[.]ai

[QILIN] – Ransomware Victim: Clnica CES

[QILIN] – Ransomware Victim: Thilges & Bernhardt, Attorneys at Law

[SPACEBEARS] – Ransomware Victim: Sharm Reef Hotel

CVE Alert: CVE-2024-46479

CVE Alert: CVE-2024-46920

CVE Alert: CVE-2024-46481

CVE Alert: CVE-2024-54999

CVE Alert: CVE-2024-5743

CVE Alert: CVE-2025-23026

CVE Alert: CVE-2024-51491

CVE Alert: CVE-2024-46480

CVE Alert: CVE-2025-22134

CVE Alert: CVE-2024-56138

Cobalt Strike Beacon Detected – 39[.]107[.]85[.]83:50050

Cobalt Strike Beacon Detected – 47[.]237[.]136[.]112:8080

Cobalt Strike Beacon Detected – 115[.]29[.]202[.]62:8222

Cobalt Strike Beacon Detected – 1[.]94[.]236[.]193:9998

Cobalt Strike Beacon Detected – 121[.]40[.]112[.]176:8087

You may have missed